Unleash cyber resilience — shape the future of data security!
Krakow-based opportunity with hybrid work model
As a Senior Data Security Policy Engineer, you will be working for our client, a leading global financial institution committed to safeguarding critical data and maintaining industry-leading security standards. Your expertise will support establishing HSBC as a key industry contributor in data protection, managing complex security policies, and driving innovative solutions in cybersecurity. This role offers the chance to impact billions of pounds worth of transactions while collaborating with dispersed international teams, fostering career growth and industry influence.
Your main responsibilities:
- Support the establishment of HSBC as a valued contributor to industry information sharing efforts across the cybersecurity landscape.
- Manage policy engineering to ensure data security controls are fulfilled, optimized, and continuously improved.
- Collaborate with lines of business to understand requirements and address gaps for data protection.
- Design, develop, and refine security policies to align with enterprise risk appetite.
- Organize onboarding of business units into new data protection policies and controls.
- Assist with innovations and development initiatives in data security engineering.
- Oversee migration of new tooling into business-as-usual (BAU), ensuring smooth transition and handover.
- Drive service improvements and enhance customer usability of data security offerings.
- Provide MI and KPI reports for senior management on data security tooling effectiveness.
- Lead training, development, and mentorship of junior cybersecurity analysts.
- Configure and operate DLP and other policy enforcement tools, including data scanning solutions.
- Offer production support for data security policies and tooling.
- Use Confluence and Jira for project management and operational support.
- Engage with stakeholders, manage communication, and handle audit requirements.
You're ideal for this role if you have:
- Minimum 5 years of experience in Data Security Engineering within a regulated or financial environment
- Hands-on experience with DLP products such as Symantec DLP, Zscaler, Trellix, or Proofpoint DLP
- Strong knowledge of Data in Motion and Data at Rest security concepts
- Proven ability to create, analyze, and update data security policies
- Experience with Agile methodologies, project planning, and management
- Excellent communication skills and a strong team-oriented mindset
- Ability to translate complex security requirements into actionable plans
- Awareness of the threat landscape affecting financial services
It is a strong plus if you have: (optional)
- Industry certifications (CISSP, CISA, CISM)
- Experience with threat detection and security monitoring tools
- Knowledge of SQL, scripting, or automation in security processes
Language Required for the role:
Eligibility for the role:
- Only candidates with an existing legal right to work in the European Union will be considered for this role.
#MAKEYourCareerBETTER
Interested? Apply now and include your CV (preferably in English) along with a statement confirming your consent to the processing and storage of your personal data.